Weaknesses of type CWE-352
5,726 resultsCVE-2024-10045MEDIUMTransients Manager <= 2.0.6 - Cross-Site Request ForgeryEPSS 0.2%CVE-2024-37435MEDIUMWordPress Perfect Portfolio theme <= 1.2.0 - Cross Site Request Forgery (CSRF) vulnerabilityEPSS 0.2%CVE-2025-21528MEDIUMVulnerability in the Primavera P6 Enterprise Project Portfolio Management product of Oracle Construction and Engineering (component: Web AccEPSS 0.2%CVE-2016-20028MEDIUMZKTeco ZKBioSecurity 3.0 Cross-Site Request Forgery SuperadminEPSS 0.2%CVE-2023-48278HIGHWordPress WP Forms Puzzle Captcha Plugin <= 4.1 is vulnerable to Cross Site Request Forgery (CSRF) leading to XSSEPSS 0.2%CVE-2023-2919MEDIUMTutor LMS <= 2.7.4 - Cross-Site Request Forgery via 'addon_enable_disable'EPSS 0.2%CVE-2024-12414MEDIUMThemify Store Locator <= 1.1.9 - Cross-Site Request ForgeryEPSS 0.2%CVE-2024-13684HIGHReset <= 1.6 - Cross-Site Request Forgery to Database ResetEPSS 0.2%CVE-2024-9351MEDIUMForminator Forms – Contact Form, Payment Form & Custom Form Builder <= 1.35.1 - Cross-Site Request Forgery to Draft Quiz CreationEPSS 0.2%CVE-2023-47790HIGHWordPress Pz-LinkCard Plugin <= 2.4.8 is vulnerable to Cross Site Request Forgery (CSRF)EPSS 0.2%CVE-2025-13283HIGHChunghwa Telecom|TenderDocTransfer - Arbitrary File Copy and PasteEPSS 0.2%CVE-2024-37093MEDIUMWordPress MasterStudy LMS plugin <= 3.2.1 - Cross Site Request Forgery (CSRF) vulnerabilityEPSS 0.2%CVE-2025-53095CRITICALSunshine application-wide CSRF in the UI leads to command injection as AdministratorEPSS 0.2%CVE-2026-1148MEDIUMSourceCodester/Patrick Mvuma Patients Waiting Area Queue Management System cross-site request forgeryEPSS 0.2%CVE-2024-37450MEDIUMWordPress Benevolent theme <= 1.3.4 - Cross Site Request Forgery (CSRF) vulnerabilityEPSS 0.2%CVE-2024-9649MEDIUMWP ULike <= 4.7.4 - Cross-Site Request Forgery to Statistic DeletionEPSS 0.2%CVE-2024-28948HIGHAdvantech ADAM-5630 Cross-Site Request ForgeryEPSS 0.2%CVE-2024-37451MEDIUMWordPress Travel Agency theme <= 1.4.9 - Cross Site Request Forgery (CSRF) vulnerabilityEPSS 0.2%CVE-2024-9352MEDIUMForminator Forms – Contact Form, Payment Form & Custom Form Builder <= 1.35.1 - Cross-Site Request Forgery to Draft Custom Form CreationEPSS 0.2%CVE-2024-51644HIGHWordPress Addressbook plugin <= 1.1.3 - CSRF to Stored XSS vulnerabilityEPSS 0.2%